# lu-h-5m2l-kg8i-com-w7e6k6xmm2.vercel.app — MALICIOUS > lu-h-5m2l-kg8i-com-w7e6k6xmm2.vercel.app is a crypto drainer site — 14/95 VirusTotal flags. Verify safety on PhishDestroy immediately. ## Summary PhishDestroy identifies lu-h-5m2l-kg8i-com-w7e6k6xmm2.vercel.app as a high-risk crypto drainer posing as a legitimate web3 tool. This domain uses Vercel hosting and Google-issued SSL to appear trustworthy while attempting to trick users into connecting crypto wallets. The moment a wallet signature is granted, the drainer silently transfers tokens to attacker-controlled addresses before the victim realizes what happened. Crypto drainers like this one represent the fastest-growing threat in web3 scams, often impersonating portfolio trackers, NFT mints, or DeFi dashboards. This domain is particularly dangerous because it leverages Vercel’s legitimate infrastructure (IP 216.198.79.131) and Google Trust Services SSL certificates to bypass browser warnings. VirusTotal confirms 14 out of 95 security vendors detect malicious activity, while Google Safe Browsing has flagged it specifically for social engineering attacks. The domain is registered through Vercel Inc., a popular hosting service often abused by threat actors to host phishing pages quickly and at scale. Once a user visits, malicious JavaScript loads immediately, scanning for wallet connections and preparing to drain funds if any transaction signing occurs. If you visited lu-h-5m2l-kg8i-com-w7e6k6xmm2.vercel.app, disconnect your wallet immediately using your wallet’s “Disconnect” or “Reject pending requests” option. Do not sign any new transactions, even if they seem unrelated. Scan your device for malware using reputable antivirus software, especially if you entered any credentials. Report the domain to PhishDestroy for verification and consider revoking any suspicious smart contract approvals via tools like revoke.cash. Always verify URLs via official channels before interacting, and never click links from unsolicited messages or ads. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Vercel Inc. - IP: 216.198.79.131 ## Detection Status - VirusTotal: 14 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/f9fabab5-386e-419a-9dd6-00f1b83d5cb1 - PhishDestroy: https://phishdestroy.io/domain/lu-h-5m2l-kg8i-com-w7e6k6xmm2.vercel.app/ - LLM endpoint: https://phishdestroy.io/domain/lu-h-5m2l-kg8i-com-w7e6k6xmm2.vercel.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/lu-h-5m2l-kg8i-com-w7e6k6xmm2.vercel.app/ Last updated: 2026-03-22